$ rpki-client -vvf rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/7LSEAFYEaoqTIoTqXx4EagIzHOk.mft File: 7LSEAFYEaoqTIoTqXx4EagIzHOk.mft (raw, json) Hash identifier: WDH7d8Auw0qXzmZlyuGHupYYRsrkNw3d7Z/vtkr7NI8= Subject key identifier: D1:FB:01:9A:D0:0E:EC:18:BD:E9:17:AC:D4:AC:DE:42:94:62:B3:48 Authority key identifier: EC:B4:84:00:56:04:6A:8A:93:22:84:EA:5F:1E:04:6A:02:33:1C:E9 Certificate issuer: /CN=A9149E50/serialNumber=ECB4840056046A8A932284EA5F1E046A02331CE9 Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LSEAFYEaoqTIoTqXx4EagIzHOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/7LSEAFYEaoqTIoTqXx4EagIzHOk.mft Manifest number: 9C Signing time: Mon 11 Aug 2025 06:38:14 +0000 Manifest this update: Mon 11 Aug 2025 06:38:14 +0000 Manifest next update: Mon 18 Aug 2025 06:38:13 +0000 Files and hashes: 1: 7LSEAFYEaoqTIoTqXx4EagIzHOk.crl (hash: h11sXPBXc9LCOQqZp/yHedlgyIWp17FzKQI1GhqgU1g=) 2: 99AA0D12924111EFB764DA22C4F9AE02.roa (hash: /mhXFSUm8wgJtNfejG+rJ98B0FGC7kHmpO9IfNRXQCI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/7LSEAFYEaoqTIoTqXx4EagIzHOk.crl rsync://rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/7LSEAFYEaoqTIoTqXx4EagIzHOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LSEAFYEaoqTIoTqXx4EagIzHOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149E50, serialNumber=ECB4840056046A8A932284EA5F1E046A02331CE9 Validity Not Before: Aug 11 06:38:14 2025 GMT Not After : Aug 18 06:38:13 2025 GMT Subject: CN=68998fd6-6da7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c0:aa:fb:40:e3:93:96:53:e7:11:1b:9b:b2: 6a:48:e0:d6:30:51:7f:f7:2f:47:56:e9:db:ec:25: 2f:90:39:eb:fb:68:5b:3d:bb:90:48:2b:88:4a:04: 27:db:e6:84:b0:89:db:79:76:58:d5:23:8f:39:45: cc:b3:20:3f:0a:31:92:cb:ea:58:a9:10:46:0b:6e: 20:ba:2f:ed:27:b8:82:11:ac:10:77:5d:e3:7c:8a: 9a:8f:b3:80:b5:f3:5e:2a:e8:2d:42:e0:6d:3a:c5: 8f:47:e1:3c:1f:92:6d:47:39:71:94:21:dc:40:8c: a9:a6:17:66:68:f6:72:c9:24:70:24:5c:a0:9c:26: c5:04:29:b9:ea:32:b6:d0:c6:d3:70:1c:46:11:68: 67:8e:a8:52:76:b5:a1:b4:39:9d:83:1c:86:7d:16: e2:c1:db:7f:62:5c:55:f3:09:00:a6:a1:10:86:65: 7c:31:4e:ee:f9:50:ca:26:80:40:6a:88:1e:13:ea: 04:18:f6:e1:e7:8c:2b:2e:ed:19:4b:0a:d6:e9:e1: 3e:f9:3b:c8:e6:67:ca:5e:eb:35:ba:e2:dc:29:88: 07:87:8b:f3:84:c6:96:98:58:ef:cd:af:e6:48:1c: 65:af:55:b9:df:9e:ec:d1:1c:8f:7c:23:44:cc:b6: 3c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:FB:01:9A:D0:0E:EC:18:BD:E9:17:AC:D4:AC:DE:42:94:62:B3:48 X509v3 Authority Key Identifier: keyid:EC:B4:84:00:56:04:6A:8A:93:22:84:EA:5F:1E:04:6A:02:33:1C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/7LSEAFYEaoqTIoTqXx4EagIzHOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LSEAFYEaoqTIoTqXx4EagIzHOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/7LSEAFYEaoqTIoTqXx4EagIzHOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:b4:dd:12:aa:13:ba:4c:f0:da:57:4b:99:a1:9f:0d:d3:82: 68:20:39:94:b5:96:42:b9:85:1b:5c:bc:0f:3a:4a:b5:1c:2b: 90:ee:32:48:64:17:d1:29:da:c9:0a:26:58:c0:cf:1d:61:e3: ae:9d:b3:0b:99:90:f7:df:37:14:ef:13:c7:59:9a:d3:08:00: ab:6d:46:5f:3f:01:10:5d:db:72:22:e6:dd:f8:43:a2:55:9e: 7a:d5:e5:4a:8e:91:76:a4:08:a4:56:74:0f:e7:14:fa:5a:3e: e1:0c:45:0f:3d:c1:bf:7d:20:39:5b:02:87:07:92:3a:d1:55: bd:0d:df:06:c2:c0:26:5d:00:6b:d0:76:33:49:d3:b2:8b:ae: 64:00:a1:b6:ac:df:ed:be:cd:f6:18:52:8a:6a:1d:88:53:43: 8d:48:26:61:78:6a:38:c5:46:19:c5:24:7c:18:e7:c9:98:fb: 00:89:78:fc:cf:23:58:2b:14:04:12:40:b2:fb:a9:78:e6:20: e0:2d:f6:23:e6:d3:1d:59:81:c6:ec:47:59:52:a3:bc:47:a9: 9b:47:57:3c:a0:a2:9c:7a:8b:c6:3e:5a:1e:d3:ab:f8:8b:3e: 68:82:31:ab:a0:d3:88:a5:86:79:81:21:d9:1b:0c:3f:9c:94: d5:09:dd:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlFNTAxMTAvBgNVBAUTKEVDQjQ4NDAwNTYwNDZBOEE5MzIyODRFQTVGMUUwNDZB MDIzMzFDRTkwHhcNMjUwODExMDYzODE0WhcNMjUwODE4MDYzODEzWjAYMRYwFAYD VQQDEw02ODk5OGZkNi02ZGE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMCq+0Djk5ZT5xEbm7JqSODWMFF/9y9HVunb7CUvkDnr+2hbPbuQSCuISgQn 2+aEsInbeXZY1SOPOUXMsyA/CjGSy+pYqRBGC24gui/tJ7iCEawQd13jfIqaj7OA tfNeKugtQuBtOsWPR+E8H5JtRzlxlCHcQIypphdmaPZyySRwJFygnCbFBCm56jK2 0MbTcBxGEWhnjqhSdrWhtDmdgxyGfRbiwdt/YlxV8wkApqEQhmV8MU7u+VDKJoBA aogeE+oEGPbh54wrLu0ZSwrW6eE++TvI5mfKXus1uuLcKYgHh4vzhMaWmFjvza/m SBxlr1W5357s0RyPfCNEzLY8qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNH7AZrQ DuwYvekXrNSs3kKUYrNIMB8GA1UdIwQYMBaAFOy0hABWBGqKkyKE6l8eBGoCMxzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUU1MC8yREQ3NjM4Qzky NDExMUVGQTU2Q0NFMjFDNEY5QUUwMi83TFNFQUZZRWFvcVRJb1RxWHg0RWFnSXpI T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdMU0VBRllFYW9xVElvVHFYeDRFYWdJekhPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUU1MC8yREQ3NjM4QzkyNDExMUVGQTU2Q0NFMjFDNEY5QUUwMi83TFNFQUZZRWFv cVRJb1RxWHg0RWFnSXpIT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvtN0SqhO6TPDaV0uZoZ8N04JoIDmUtZZCuYUbXLwPOkq1HCuQ7jJI ZBfRKdrJCiZYwM8dYeOunbMLmZD33zcU7xPHWZrTCACrbUZfPwEQXdtyIubd+EOi VZ561eVKjpF2pAikVnQP5xT6Wj7hDEUPPcG/fSA5WwKHB5I60VW9Dd8GwsAmXQBr 0HYzSdOyi65kAKG2rN/tvs32GFKKah2IU0ONSCZheGo4xUYZxSR8GOfJmPsAiXj8 zyNYKxQEEkCy+6l45iDgLfYj5tMdWYHG7EdZUqO8R6mbR1c8oKKceovGPloe06v4 iz5ogjGroNOIpYZ5gSHZGww/nJTVCd0j -----END CERTIFICATE-----Generated at Mon Aug 11 09:29:05 2025 by rpki-client